LANDesk Patch News Bulletin: Wireshark Version 1.4.7 is Available for Download 02-JUN-2011

Version 1

    LANDesk Security and Patch News

     

    Headlines

    • (June 02, 2011) Wireshark v1.4.7 has been released and is available for download. The following issues have been resolved in this release:

    Large/infinite loop in the DICOM dissector. (Bug 5876)

     

    Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

      Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Diameter dictionary file could crash Wireshark.

     

    Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

      Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted snoop file could crash Wireshark. (Bug 5912)

     

    Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

      David Maciejak of Fortinet's FortiGuard Labs discovered that malformed compressed capture data could crash Wireshark. (Bug 5908)

     

    Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

      Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Visual Networks file could crash Wireshark. (Bug 5934)

     

    Versions affected: 1.2.0 to 1.2.16 and 1.4.0 to 1.4.6.

     

    The following bugs have been fixed:

      AIM dissector has some endian issues. (Bug 5464)

      Telephony TP3 SUS doesn't display window. (Bug 5605)

      Support for MS NetMon 3.x traces containing raw IPv6 ("Type 7") packets. (Bug 5817)

      Service Indicator in M3UA protocol data. (Bug 5834)

      IEC60870-5-104 protocol, incorrect decoding of timestamp type CP56Time2a. (Bug 5889)

      DNP3 dissector incorrect constants AL_OBJ_FCTR_16NF _FDCTR_32NF _FDCTR_16NF. (Bug 5920)

      3GPP QoS: Traffic class is not decoded properly. (Bug 5928)

      Wireshark crashes when creating ProtoField.framenum in Lua. (Bug 5930)

      Fix a wrong mask to extract FMID from DECT packets dissector. (Bug 5947)

      Incorrect DHCPv6 remote identifier option parsing. (Bug 5962)

     

     

           

    New Vulnerabilities

    • Vulnerability ID – WIRESHARKv1.4.7

     

    Changed Vulnerabilities

    • Vulnerability ID – WIRESHARKv1.4.6 (Added the replacement information.)

     

     

    New Patch Downloads

    • wireshark-win32-1.4.7.exe
    • wireshark-win64-1.4.7.exe

     

    Where to Send Feedback

    At LANDesk, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.

     

    Best regards,

    LANDesk Product Support

     

    Copyright © 2011 LANDesk Software.  All rights reserved. LANDesk is either a registered trademark or trademark of LANDesk Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.

     

    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDesk disclaims any liability with respect to this document and LANDesk has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit http://www.landesk.com.